ESTsoft stated that the Nate breach investigation found attackers strategically targeted Nate employee PCs rather than general users of the public ALZip product. When those employee systems updated ALZip, they were redirected to an impersonated update server instead of ESTsoft’s legitimate update server, resulting in malware installation and 62 Nate employee PCs becoming zombie PCs. Police said there was no indication that ESTsoft was involved in the crime, but the company acknowledged its public ALTools server infrastructure had been abused as a path into SK Communications’ internal network. ESTsoft responded with security patches, stronger update-file integrity checks, encrypted update communications, and organizational changes to improve server security, incident response, and vulnerability review.